Philippines health insurer hacked: What we know
/ Photo: JAM STA ROSA - AFP
-
Messi to miss Miami's MLS Orlando clash
-
Nunez leaves Liverpool to join Saudi's Al-Hilal
-
Sinner storms to quick-fire opening win in Cincinnati
-
Thousands protest in Tel Aviv against Israeli govt move to expand Gaza war
-
Colombian presidential hopeful in critical condition again: doctors
-
PSG complete signing of French goalkeeper Chevalier
-
Four astronauts home from space station after splashdown
-
US star Chen will not defend Olympic figure skating gold in Italy
-
Chad court jails ex-PM, opposition leader for 20 years
-
Momentum sagging at UN plastic pollution treaty talks
-
Designer says regrets Adidas 'appropriated' Mexican footwear
-
UK arrests 365 backing banned pro-Palestine group
-
Pawol becomes first woman to umpire in MLB
-
Norris 'all good' after NFL game-stopping pre-season injury
-
Russia cautious on Armenia-Azerbaijan deal, Iran reject border corridor
-
West Ham sign Leicester goalkeeper Hermansen
-
Overcrowded French prison swelters in 'unbearable' heat
-
UK arrests 200 backing banned pro-Palestine group
-
Four astronauts leave space station for trip back to Earth
-
UN plastic pollution treaty talks floundering
-
Death toll from northwest China floods rises to 13
-
Greeks count cost of wildfire 'tragedy' near Athens
-
Historic Spanish mosque-cathedral reopens after blaze
-
Massive French wildfire contained but 'not under control'
-
Sesko completes Manchester United's new-look forward line-up
-
Manchester United sign forward Benjamin Sesko: club
-
Kyiv won't give up land, says Zelensky as US-Russia summit confirmed
-
Kyiv won't give up land, says Zelensky as US-Russia confirm summit
-
North Korea removing border loudspeakers: Seoul military
-
Gunman kills police officer near Atlanta CDC headquarters
-
Mexico discounts risk of 'invasion' after Trump order to target cartels
-
Nawaz sparks Pakistan to five-wicket ODI win over West Indies
-
Lions' Norris hospitalized after scary injury, NFL pre-season game suspended
-
Restored Nagasaki bell rings in 80 years since A-bomb
-
Putin-Trump summit: what we know so far
-
Australia settle on Marsh and Head as T20 openers
-
New York declares total war on prolific rat population
-
Patriots unveil statue honoring iconic quarterback Tom Brady
-
Slot's new-look Liverpool under the spotlight in Community Shield
-
Five astronauts leave space station for trip back to Earth
-
Trump and Putin to meet in Alaska next Friday
-
NBA to open season with blockbuster showdowns: report
-
Brazil's Lula vetoes parts of environmental 'devastation bill'
-
Trump says Armenia, Azerbaijan commit to end fighting 'forever'
-
Toronto champion Shelton to start Cincy against Argentine outsider
-
US astronaut Jim Lovell, commander of Apollo 13, dead at 97
-
Trump says to meet Putin next Friday in Alaska
-
Fire extinguished, historic mosque-cathedral in southern Spain 'saved'
-
Trump demands $1bn from University of California over UCLA protests
-
Fire contained, historic mosque-cathedral in southern Spain 'saved'
NYSE - LSE
| RBGPF | 1.7% | 73.08 | $ | |
| CMSC | 0.39% | 23.05 | $ | |
| JRI | 0.19% | 13.435 | $ | |
| SCU | 0% | 12.72 | $ | |
| BCC | -1.34% | 82.09 | $ | |
| SCS | -0.76% | 15.88 | $ | |
| BCE | 2.34% | 24.35 | $ | |
| NGG | -1.51% | 71.01 | $ | |
| RIO | 1.76% | 61.86 | $ | |
| RYCEF | -0.14% | 14.42 | $ | |
| RELX | -2.2% | 48 | $ | |
| CMSD | 0.25% | 23.58 | $ | |
| GSK | 0.58% | 37.8 | $ | |
| AZN | -0.69% | 73.55 | $ | |
| VOD | 0.88% | 11.36 | $ | |
| BTI | 0.96% | 57.24 | $ | |
| BP | -0.15% | 34.14 | $ |
Philippines health insurer hacked: What we know
Hackers have stolen the personal data of potentially millions of people from the Philippines's national health insurer, which has urged members to change their passwords after the "staggering" cyberattack.
The hackers have started releasing files including confidential memos from the stolen data to pressure the government into paying a $300,000 ransom.
Here is what we know so far about the attack, which was discovered by the Philippine Health Insurance Corporation (PhilHealth) on September 22:
What did the hackers steal?
PhilHealth and the government have yet to say exactly how many people have been impacted, but the insurer warned members in a notice that data such as addresses, phone numbers and insurance IDs was compromised.
As of June 30, according to its website, PhilHealth had more than 59 million direct and indirect contributors -- more than half the population of the Philippines.
PhilHealth asked members to monitor credit card transactions and change passwords, especially for financial services.
Separately, employee information was also stolen from the targeted computers.
The hackers released some of the data on the dark web, showing health memos and other information that a top government official described as confidential.
An investigation into the scale of the attack is ongoing, but the National Privacy Commission has described the amount of data stolen as "staggering".
Who are the hackers, and what do they want?
The Philippine government has referred to the attackers as the Medusa group, who have demanded $300,000 to restore access to PhilHealth computers and delete the stolen data.
MedusaLocker, first detected in late 2019, has been used to mainly target healthcare organisations and its creators took particular advantage of the emergency situation during the Covid-19 pandemic, according to a US government report.
The ransomware has been sold to criminal actors, and a US government cybersecurity advisory said its creator receives a cut of any ransom.
It was not clear if the Medusa group identified by the Philippines government is the creator of or an entity that purchased MedusaLocker.
How did they get the data?
On September 22, PhilHealth staff were unable to access a number of computers, which displayed a message saying hackers had locked the machines and encrypted the data.
The insurer shut down the affected systems to try and stop the attack from spreading, slowing or entirely shutting down some online services for days.
The government has so far not said exactly how hackers got access to the computers.
But in interviews with local media last week, senior PhilHealth official Israel Pargas said the insurer did not have an antivirus software at the time of the attack.
How has the government responded?
With a blunt 'No'. The Philippines does not pay ransom in any criminal cases, including cyberattacks, officials have said.
However, with hackers releasing more data from the stolen files, calls have grown for the government to conduct an audit of its cyber defences.
The National Privacy Commission said Saturday it has started an investigation into any potential lapses and data law violations by PhilHealth.
The NPC said its analysis of 734 GB of stolen data revealed "sensitive personal data", and warned the public that anyone who downloads this information could face criminal charges.
Q.Bulbul--SF-PST
